Skip to end of banner
Go to start of banner

Security Certificates

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 11 Next »

Below is a library of our latest security certificates, designed as a single point of reference for our partners and customers, to provide visibility of the security levels we have achieved and when these are valid until.

Certificate

Obtained

Notes

Cyber Essentials

June 23

- due to a planned change in office location at the end of June 24, which involves a period of elapse between the old office and new office being available, we will be renewing our certification once we have moved into our new offices.

Penetration (PEN) Testing - API & Web Application

September 24

- Testing by a 3rd party provider (Daisy) is performed every 6 months to ensure we have an independent review of our software. This is in addition to the internal security scans we perform alongside each of our software releases.

Scope:

Our PEN Tests are performed against both our Web Application and the API element of our dashboard software, testing from both authenticated and unauthenticated perspective.

Results:

  • Only 1 Cycle of Testing Needed

  • No Critical or High priority item found, leading to Certification

  • 3 Medium and 4 Low priority items were highlighted, and are being tracked for future consideration. Some of these could be considered false/positive results for our application.

  • No labels